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1. (Cunently Amended) A computer-implemented method for providing access to 

consimier information comprising; 

storing an information account in a cenlral data repository that is accessible via a 
distributed computer network, the information account containing consumer infonaation 
elements that ee»-be ooooss, rotiiovod and oltw ed are changed by the consumer; 

associating consumer authentication information with the information account usingj 
server such that access to the mformation account by the consumer is conditioned upon receipt 
and verification of &e consumer authentication information by the server; [[and]] 

further associating a temporary authorization with the information account yging an 
aiifhftntication mnHnia ninninp on the server, the temporary authorization having consumer- 
defined attributes that define access privUeges that will be granted to a person who presents the 
temporary authorization along with a request for access to the information account; 

receiving the temporary authorization from the distributed computer network; 

cnm parinp the temporary authorization to data m tm authentication table associated with 
the informatioD account using the authentication m odule in order to determine at least one of; 
v^ether the temporary authorization is being used bv an authorized party who is not the 
consumer, whether tiie tempotarv authorization has e x pired, and what level of access to the 
information account is associated with the temporary auth orization: and 

gpmting a level of access to the information account bv the authentica tion module based 
on the temporary authoriaation if the temporary authorization is found valid based on the 
comparing step. 

2. (Original) A computer readable medium having stored thereon computer executable 
instructions for performing the method of claim 1. 
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3. (Original) The method of claim ly wherein the consiuner-defined ate^^ 

at least one of Ae access privileges relating to: a number of times that the temporary 
authorization may be used to access the information account, a period of validity associated with 
the temporary authori2ation, a type of the consumer infonnation elements that can be accessed, 
and a specification of read, write and/or modify privileges. 

4. (Original) The method of claim U wherein the consumer-defined attributes include a 
filter identifier that identifies a filter to be used to ensure that only authorized data is filtered for 
release to the party who presents the temporary auti^orization, 

5. (Original) The method of claim 1, further comprising the step of transmitting the 
temporary authorization to ihi& consumer; and 

wherein the consumer presents the temporary authorization to a tbbrd-party, 

6. (Original) The method of claim 1, further comprising the step of transmitting the 
temporary authorization to a designated third-party on behalf of the consumer. 

7. (Original) A computer readable medium having stored thereon computer executable 
instructions for performing the method of claim 6. 

8. (Original) The method of claim 6, wherein transmitting the temporary authorization 1o 
the designated third-party comprises emailing the temporary authorization to an email account 
designated by the consumer. 

[The Remainder of this page has been intentionally left blank.] 
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9. (Original) The method of claim 6, wherein transmittmg the tempoxary authorization to 
tiie third-party comprises embedding the temporary authorization as a parameter in uniform 
resource locator and le-directing a browser operated by the consumer to a web page associated 
with the ttiird-party using the uniform resouice locator; and 

wherein a server hosting the web page is configured to extract the temporary 
authorization ftom the uniform resource locator and to transmit a rcqi^st for access to Ihe 
information account along with the temporaiy authorization on behalf of the third-party. 

10. (Original) Themethodof claim 6, wherein transmitting the temporary authorization 
to the fliird-party comprises storing the temporary authorization in a second infonnation account 
stored in the central data repository and associated with the third-party. 

11. (Original) The method of claim 1, wherein the infonnation account stores the 
consumer information elements as a tagged data structure. 

[The Remainder of this page has been intentionally left blank.] 
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12. (Curreatly Amended) A computer-implemented mpmod for providing access tg 

consumer information comprising: 

presenting to a host server via a distributed commiter networic a request for access by a 
consumer to an information account along wiih consumer authentication information, the 
toformadon account being stored in a central data repository that is accessible by the host server 
via the distributed computef network, the information account containing consumer information 
elements that €a»*e m C hm r^ onoofioad. wtrievod and altorod by the consumer, 

receiving from flie host server an acknowledgment Uiat the consumer has been 
authenticated based on the consumer authentication mfonnation and thereby granted access to the 
infoimattonaiccoun^ [[^d]] 

in response to flie acknowledgment, transmitting to the host server a request by the 
consumer for generation of a temporary authorization having consumer-defined attributes that 
define access privileges that will bo arc granted to a person who presents the temporary 
authorization along with a subsequent request for access to the information account; 

receiving the temporary authorization finom the distribu ted commiter networic with an 
authentication module running on the host server: 

comparing the temporary authorization to data in an auttienticatio n table associated vrith 
the information account lising the authentication module in order to determine at least one of: 
whether the temporary authorization is being used bv an authorized party who is not the 
consumer whether the tcmooraiv authorization has expired^ and what level of access to die 
information account is associated with the temp oraiv aufliorization: and 

eoranting a level of access to the information account with the authentication module 
based on the temporary authorization if the temporary authorizatjon is found v alid based on the 
comparing step . 

13. (Original) A computer readable medium having stored thereon computer executable 
instructions for performing the method of claim 12. 
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14. (Original) The method of claim 12, wherein the consumer-defined attributes 
comprise at least one of Hie access privileges relating to: a number of times that the temporaiy 
authorization may be used to access the information account, a period of validity associated with 
the temporaiy authorization, a type of the conisumer information elemarts that can be accessed, 
and a specification of read, write and/or modiQ' privileges. 

15. (Original) The method of claim 12, wherein the consumer-defined attributes include 
a filter identifier that identifies a filter to be used to ensure that only authorized data is filtered for 
release to the party v/bo presents the temporary authorization. 

16. (Original) The method of claim 12. fiirther comprising the steps of: 
receiving the tonporary atidiorization fiom the host server; and 
presenting the temporary authcmzation to the consumer for delivery to a thiid-party. 

17. (Original) The method of claim 12, wherem the host server generates the temporary 
authorization and transmits the temporary authorization to a designated third-party on behalf of 
the consumer. 

18. (Original) A compmer readable medium having stored thereon computer executable 
instructions for performing the method of claim 17. 

19. (Original) The method of claim 1 7, wherein transmitting the temporary authorization 
to the designated third-party comprises emailing the temporaiy authorizatiou to an email accoimt 
designated by the consumer. 



[The Remainder of this page has been intentionally left blank.] 
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20. (Original) Hie method of claim 17, whwein transmitting the temporary authorization - 
to the third-party comprises embedding the temporary authorization as a parameter in a uniform 
lesouree locator and tc-directing a browser operated by the consumer to a web page associated 
wifh the fhird-party using the uniform resource locator; and 

wherein a server hosting the web page is configured to extract the tempoxaiy 
authorization from the uniform resource locator and to transmit a request for access to the 
information account along witti the temporary authorization on behalf of the third-party. 

21. (Original) The method of claim 17, wherein transinittirig the temporary authorization 
to Ac Uiird-pariy comprises storing the temporary authorization in a second information account 
stored in the central data repository and associated with the third-party. 

22. (Original) The method of claim 12, wherein the information account stores ihc 
consumer information elements as a tagged data structure. 

[The Remainder of this page has been intentionally left blank.] 
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23. (Currently Amended) A ^nmpiiter-iimplemented method for providxJlg access to 
consumer information via a distributed computer network comprising: 

receiving from a oliont dovioo oHOOuting a browse p a request mth a first server for access 
to an information account and consumer authentication infonnation from a client device 
^.veciitin p a browser> the information account being stored in a central data repository and 
contairiing consumer information elements that eaa^e are changed ftoooao, rotriovod and altered 
by the consumer; 

authenticating the commner w i th the first server to access Oie information apcount l?a?ed 
on the consu mer auihentication information; 

in response to authenticating the consumer bv the first servCT to access the information 
account based on the consumer authentication information, generating a temporary authorization 
with an authentication module nmniny on t he first server having consumer-defined attributes that 
define access privileges that ¥ 4 11 be at§ granted to an entity that presents the temporary 
authorization along with a fijrther request for access to the infonnation account; 

embedding the temporary autiiorization as a parameter in a uniform resource locator wi& 
the authentication module and redirecting the browser of the client device with the first server to 
a web page hosted bv a second server and associated with a third-party using the uniform 
resource locator; 

subsequently receiving a communication with the first server from ([a]] the second server 
hosting the web page comprising the fiirther request for access to the infonnation account along 
with the temporary authorization; and 

in response to receiving the temporary authorization with the first server , authenticating 
the third-party with the authentication module to access the infonnation accoxmt according to the 
access privileges associated with the temporary authorization. 

24. (Original) A computer readable medium havmg stored thereon computer executable 
instructions for performing the method of claim 23. 
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25. (Origmfll) The method of claim 23, >vherein the comumer-defined attributes - 
comprise at least one of the access privUeges relating to: a number of times that the temporary 
authorization may be used to access the infonnation account, a period of vaUdity associated vrtth 
the temporary authorization, a type of the consumer information elements that can be accessed, 
and a specification of read, write and/or modify privileges. 

26. (Original) The method of claim 23, whereto the consumer-defined attributes include 
a filter identifier that identifies a filter to be used to ensure that only authorized data is filtered for 
release to the party v«^o presents the temporary authorization. 

27. (Original) The metiiod of claim 23, -w^ierein the mformation account stores the 
consumer information elonents as a tagged data structure. 

28. (Currently Amended) The method of claim 23, whereto the communication ftom the 
second server is generated by a serv«r-side [^plication. 

29. (Original) The method of claim 28, whereto ihc communication conforms with 
Simple Object Access Protocol. 



[The Remamder of this page has been totentionally lefi: blank.] 



-9- 



PA(X14ft1'IO)ATil1i2005 3:37:31PM [Eastern DayligttTiine]miiSPTO{^ 



SEP '01 2005 15:45 FR KING RND SPRLDING 404 572 5145 TO 555 1 tt07258tt 1 0500 P 

Serial No. 10/007,785 

30, (Currently Amended) A comiput^ system for providing access to consumer 
information comprising: 

a central d^ repository accessible via a distributed computer network for storing an 
information account containing consumer infoimation elements that eafrbe are changed accessed, 
retrieved and altered by the consumer; 

a communicadon device for receiving fix)m the consumer via die distributed wmp^ter 
network consumer authentication information, a request for a temporary authorization and 
consumer-defined attributes defining access privileges that ¥4U-%e are granted to a person who 
presents the temporary authorization along with a request for further access to the information 
account; and 

a processor configured for executing computer-executable instructions for: 

in response to receiving the consumer authentication information^ accessing an 

authentication table to determine whether die consumer authentication mformation is 

associated with the information account, such that the consumer may be provided with 

access to the information account, [[and]] 

in response to determining that the consumer authentication informatipn is 

associated with the information account and in response to flie request for the temporary 

authorization, generating the temporary authorization having the consumer-defined 

attributes^ 

receiving the temporary authorization from the distributed computer network: 
comparing the temporary authorization to data in the authentication table 
associated with the information accoimt in order to determ ine at lea st one of: whether the 
temporary authorization is being used bv at least one of an authorized person and authorized 
third-party who is not the consumer, Viliether the temporary authorization has expired, and what 
level of access to the information account is associated with the temporary authorization: and 

granting a level of access to the information account based on the temporary 
authorization if the temporary authorization is found valid based on the comparing step. 
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31. (Original) The system of claim 30, wheiein the consumer-defined attributes 
comprise at least one of the access privileges relating to: a number of times that the temporary 
authorization may be used to access the infonnation account, a period of validity associated with 
the temporary authorization, a type of the consumer infonnation elements that can be accessed, 
and a specification of read, write and/or modiQr privileges. 

32. (Original) The system ofclaim 30, wherein the consumer-defined attributes include 
a filter identifier that identifies a filter to be used to ensure that only authorized data is filtered for 
release to the party who presents the temporary authorization. 

33. (Original) The system of claim 30, v^dierein the processor is further configured for 
executing computer-executable instructions for transmitting the temporary authorization to the 
consumer for delivery to a third-party. 

34. (Original) The system of claim 30 , wherein the processor is fiirthcr configured for 
executing computer-executable instructions for transmitting the temporary auttiorization to a 
designated third-party on behalf of the consumer. 

35. (Original) The system of claim 34, wherein transmitting the temporary authorization 
to the designated third-party comprises emailing the temporary authorization to an email account 
designated by the consumer. 

[The Remainder of this page has been intentianally left blank.] 
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36. (Original) The system of claim 34. wherein transmitting the temporary auth^^ 

to the third-party comprises embedding the temporary authorization as a parameter in a uniform 
resource locator and re-directing a browser operated by the consumer to a web page associated 
with flie third-parfy using the uniform resource locator; and 

wherein a server hosting the web page is configured to extract the temporary 
authorization from the uniform rcsouree locator and to transmit a request for access to the 
information account along with the tempoiajy authorization on behalf of the third-party. 

37. (Original) The system of claim 34, "^ei^intransmittmg the temporary auttiorization 
to the third-party comprises storing the temporary aufliorization hi a second information account 
stored in the central data repository and associated with the thu:d-party. 

38. (Original) The ^stem of claim 30, wherein the information account stores the 
consumer information elements as a tagged data structure. 

[The Remainder of this page has been intentionally left blank.] 
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39. (Currently Amended) a computer-implemented method for providing access to an 

information account, comprising the steps of: 

gf/win p the information accoun t on a c^tral data repository: 

receiving vnih a server, over a distributed computer networic, requests from different 
network devices for access to the information account, each of said requests comprising an 

authorization identifier; 

in response to each of the requests, rftmiMring each antfaorization identifier to data in an 
authentication table aasociated with the information account using an authentication moguls 
nmnine on the server in order to determine at least one of: whether the authorization identifier is 
heing used bv an authorized party who is not the consumer, whether the authorization identifier 
haji expiicd. and what level of access t o the informatinn account is associated with the 

anthorizatipn identifien 

i f the comparing sten is successfbl foip fl t??''^'^^'''^ authorization identifier, then retrileving 
a set of authorization parameters associated with the particular authorization identifier using fee 
fliithentieaiion module, said authorization parameters being defined by the entity whose 
information is stored in ttie information account; and 

granting access to each of the network devices with the authentication module if the 
comparing step is successful and in accordance wifli the authorization parameters retrieved in 
response to the network device's request. 

40. (Original) The method of claim 39, wherein said authorization parameters ^ecify a 
number of times the authorization identifier can be used to access the information account. 

41 . (Original) The method of claim 39, vslierein said authorization parameters specify a 
period of time over which the authorization identifier can be used to access the infonnation 
account 
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42. (Original) The method of claim 39, wherein said authorization parame^^ 
what portion of the infomiati on accovmt can be accessed. 

43. (Original) The method of claim 39, wherem said authorization parameters specify 
v\*ether the requestor is authorized to write infomiation to the infonnation account and whether 
the requestor is authorii^d to modify existing infonnation in the information account. 

44. (Currently Amended) The method of claim 39, further comprising the steps of: 
receiving, over the distributed comtmter netwoA. a request to define access privileges to 

the information account for a specified network device; 

authenticating the request to define access privileges; 

storing a set of authorization parameters specifying the access privileges for the specified 
network device; 

associating an authorization identifier with the stored set of authorization parameters; and 
transmitting the authorization identifier to the specified networic device, said 
authorization identifier thereafter being useable to provide the specified network device wifli 
access to the infi)rmation account according to the stored set of authorization parameters. 

45. (Original) The method of claim 44, wherein said step of transmitting the 
authorization identifier to the specified network device comprises the step of transmitting the 
authorization identifier to an account associated with the specified network device. 

46. (Original) The method of claim 44, wherein said step of transmitting the 
authorization identifier to the specified network device comprises the step of storing the 
authorization identifier in an electronic account associated with the specified network device. 
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47. (Original) The method of claim 44, wherein said step of transmitting the 

authorization identifier to the specified network device comprises the steps of embedding the 
authorization identifier in a network address tag, and transmitting the network address tag to a 
remote browser, such that the browser is redirected to the specified network device, thereby 
permitting the specified network device to extract the authorization identifier. 

[The Remainder of fliis page has been intetrtionally left blank.] 
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48. (Currently Amended) A system for providing access to an information account, 
comprising: 

a data repository storing an information account; 

a comiauto network interface for receiving, over a distributed <ffln^pyter network, requests 
from different network devices for access to the information account, each of said requests 
comprising an authorization identifier; and 

a processor for comparing each author ization identifier to data in an authenticatjon table 
associated with the information ac count in order to determine at least one of: wfaetfaey the. 
authorization identifier is be ing used bv an authorized partv whO is not th^ entity whose 
infonnation is stored in the informa tion account whether the authorization identifiey has expired, 
and what level of access to the info rmation account is associated with the authorization identifigr, 
said processor configuved to retrieve , in roopons e to oaoh of tho roqu e sis> a set of autiiorization 
parameters associated with the authorization identifier if a comparison between a respective 
authorization id entifier and data in the authentication table is successful, said processor 

granting access to each of the network devices in accordance with the authorization parameters 
retrieved in response to the network device's request and if a comparison between a respective 
authorization identifier and data in the authentication table is successful: 

wherein said authorization parameters are defined by the entity whose infonnation is 
stored in the information account. 

49. (Original) The system of claim 48, wherein said autiiorization parameters specify a 
number of times the authorization identifier can be used to access the information account. 

50. (Original) The system of claim 48, wherein said authorization parameters specify a 
period of time over which the authorization identifier can be used to access the information 
account. 
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51. (Original) The system of claim 48^ wherein said outhorizatioii parameters specif 
what portion of the information account can be accessed 

52. (Original) The system of claim 48, wherein said authorization parameters specify 
whether the requestor is authorized to write infoiroation to the information account and whether 
the requestor is authorized to modify existing information in the information account. 

53. (Currentiy Amended) The system of claim 48, wherein said network interface is 
configurtd to receive, over the distributed coy ^piiter network, a request to define access 
privileges to the information account for a specified network device, and wherein said processor 
is flnther configured to store a set of authorization parameters specifying the access privileges for 
the specified network device, associate an authori»tion identifier with the stored set of 
authorization parameters, and provide the authorization identifier to tiie specified network 
device, said autiiorization identifier thereafter being useable to provide the specified network 
device with access to die information account according to the stored set of autiiorization 
paiameters. 

54. (Original) The system of claim 53, herein the authorization identifier is provided to 
the specified network device by transmitting the autiiorization idmtifier to an account associated 
with the specified network device. 

55. (Original) Hie system of claim 53, wherein Has authorization identifier is provided to 
the specified networic device by storing the authorizaticui identifi» in an electtoziic account 
associated with the specified network device. 

[The Remainder of this page has been intentionally left blank.] 



-17- 



PA(X22lirOAT»l/200$3:37.-31PM[Easten)l)ay^^ 



SEP 01 2005 15:48 FR KING RND SPALDING 404 572 5145 TO 555 1 «0725B« 1 0500 P. 23 

Serial No. 1(W007,785 

56. (Original) Tie system of claim 5 3, -wherein the authorization identifier is provided to 
the specified network device by embedding the authorization identifier in a network address tag 
and transmitting the network address tag to a remote browser, such that the browser is redirected 
to the specified network device, thereby permitting the specified networic device to extract the 
authorization identifier. 

fllie Remainder of this page has been intentionally left blank.] 
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57. (Currently Amended) A computer-implemented method for providmg sdec^^ 
access to a consumer information account, the method comprising the steps of: 
ctffm^r^fy ^^ta fo r n ftnwsiiTner infor mation account: 

providing an interface whereby an owner of the consumer information account can 
specify the teims by which third parties can access the consumer information account; 

^♦^'^j, tt., f^rmc far fntiiH. iisp. ill flfi authentication module of a server: 

associating the stored terms with one or more authorization tickets; [[and]] 

transmitting the authorization tickets to specified third parties; 

receiving the authorization tickets from a distrib uted computer network: 

com paring the authorization tickets to d ata in the authentication table associated with the 
consumer information aecount uaine tite au t hentication module in order to determine at le^st on^ 
of: vAietiier the autiiorization ticket is beine used hv an authorized third-party who i$ not tiie 
ftonanmer- whether the temporar y authoritatior^ has expired, and what level of access to tiie 
information account i s associated with the temporary authorization; and 

granting a level of access to t he consumer information account based Oil the authorization 
ticket if tiie autb nri7.arion ticket is found vaUd based on tixe comparing gtep. 

58. (Original) The method of claim 57, fiirther comprising the steps of: 

receiving requests Horn the third parties for access to the consume information account, 

each of tiie requests comprishig an autiiorization ticket; 

in response to each of the requests, retrieving tiie stored terms associated tiierewith; and 
granting the third parties a^ss to the consumer information account in accordance with 

the stored terms associated witii the third parly's authorization ticket 

59. (Original) Tlie method of claim 57, wherein eadi of said authorization tickets is 
associated with a set of autiiorization parameters. 
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